Wednesday, March 5, 2014

Disabling the Symantec DLP Agent notifications

I’ve been branching out from the normal infrastructure stuff I’ve been doing into more security oriented fields. Part of what I now do includes Data Loss Prevention, and I’m proud to say that I’ve recently completed my first Symantec DLP deployment. It also happened to be the first deployment in Africa, outside of South Africa.

By default the Symantec DLP endpoint agent displays a notification when it scans for sensitive content, like so:

In this case the customer did not want to let the end-user see what was going on so we had to disable. Unfortunately this seemingly simple UI option is not so simple – here is what you have to do

Log into the DLP Console. Go to System -> Agent Configuration

-> Edit config -> Advanced Agent Settings

Set the UI.NO_SCAN.int to any value other than 0 and the scan dialog will not be displayed.

About Me

About This Blog

This blog serves 2 purposes. Firstly, I want to share information with other IT pros about the technologies we work with and how to solve problems we often face. I work with technologies from the desktop to the data center, Active Directory, System Center, Exchange, Hyper-V, VMware, Networking and Storage.

Less altruistically, I use my blog as a reference. There's so much to learn and remember in our field that it's impossible to keep up. By blogging, I have a notebook that I can access from anywhere. It has made me look much smarter than I probably am on many occasions.